What users are saying about

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings

TippingPoint

5 Ratings

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.9 out of 101

TippingPoint

5 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 6 out of 101

Add comparison

Likelihood to Recommend

AlienVault USM

Since AlienVault is a versatile tool, having versions for various cloud providers as well as virtualization frameworks, it adheres to the most diverse scenarios. Another strong point to be highlighted is how the company is constantly improving the product. AlienVault is famous for the effort the company puts behind the tool, and it is being improved constantly by adding new resources.
Erlon Sousa Pinheiro profile photo

TippingPoint

Great for large enterprises 10k users or more and as part of defense in depth. Medium and small business you are better off looking for a cheaper UTM solution that does it all in one. It comes down to cost, are you willing to fund the cost of breaking out IPS functionality or moving towards a unified solution?
Brian Hoadley profile photo

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
TippingPoint
Centralized event and log data collection
AlienVault USM
8.0
TippingPoint
Correlation
AlienVault USM
8.0
TippingPoint
Event and log normalization
AlienVault USM
8.0
TippingPoint
Deployment flexibility
AlienVault USM
7.0
TippingPoint
Custom dashboards and views
AlienVault USM
6.0
TippingPoint
Host and network-based intrusion detection
AlienVault USM
7.0
TippingPoint

Pros

  • Pulling in LOTS of logs from various places in AWS.
  • In theory, can consume any type of log you can send it.
John Grosjean profile photo
  • Tipping point had a very nice GUI interface that sat on top of snort rules. It was easy to access, had nice customization of dashboards and output to syslog for SIEM solutions.
  • It was easy to configure rule sets, allow groups or singular allow/blocks or white-listing.
  • Security rule sets could be tweaked up or down and allow/drops signatures could be configured to help increase performance.
Brian Hoadley profile photo

Cons

  • SMTP: The appliance can only send SMTP alerts to ONE email address. At the very least, it should be able to send to multiple people, and this shouldn't be a global setting. Some people want to see certain alerts, others need to see other alerts. It's highly inflexible.
  • Reports: There basically aren't any. I need a way to prove to the CEO that this expense is worth it, but I can't print a nice graph of logs collected per day, alarms on each device, or really anything at all.
  • SLOW: When it starts collecting lots of logs, the appliance really slows down. When you're trying to do a search on logs, it can take an hour or more. Almost impossible to do forensic analysis of an incident when it takes this long to gather the correct logs.
  • Multiple VPCs are not supported: The only deployment option is a single box. Without allowing multiple sensor nodes, it's very difficult to see into other networks. VPC peering can get you around this, but this is not allowed for us because of security concerns, and it's impossible because both VPCs use the same IP range. You can use a Linux jump box, but you can't use a Windows jump box, and a Linux jump box won't connect to any Windows servers.
John Grosjean profile photo
  • Biggest qualms I had with TippingPoint was that it was just a tad on the expensive side for what you get. Nowadays everything has gone UTM in firewalls and they do it all including IPS as part of the basic functionality so really, TP is losing a massive market share.
  • Don't see a future in the roadmap with so many other vendors getting onto the "unified" wagon and adding IPS as part of their service and at a cheaper price.
Brian Hoadley profile photo

Likelihood to Renew

AlienVault USM9.0
Based on 13 answers
The centralized logging and retention for PCI compliance was our main driver, and it is meeting that need. Otherwise there has been enough frustration with the lack of documentation and the need to customize through the CLI that I would be open to alternatives.
Aaron Rothstein profile photo
No score
No answers yet
No answers on this topic

Usability

AlienVault USM7.2
Based on 33 answers
Almost all functions are intuitive, custom logging is not very easy to configure.
Dana Hancock profile photo
No score
No answers yet
No answers on this topic

Support

AlienVault USM7.6
Based on 24 answers
I have contacted support many times and every time they addressed the issue and continued until it was resolved. The product is solid, so the overall operation is trouble free.
Dana Hancock profile photo
No score
No answers yet
No answers on this topic

Implementation

AlienVault USM7.1
Based on 37 answers
Initial deployment was great compared to all the research I had read about deploying SIEM solutions. The basic setup gives excellent information about what is occurring on your enterprise network.
Russel Beckham profile photo
No score
No answers yet
No answers on this topic

Alternatives Considered

I hate to say it, but one of the main reasons we selected the AlienVault was the price. Some of the cheaper options seemed too difficult to manage and the more expensive options were both expensive and difficult to manage. We don't have a Security Admin so simplicity was a big factor.
Will Armistead profile photo
Most other firewall UTM solutions, Cisco, Palo Alto, Fidelis, etc.
Brian Hoadley profile photo

Return on Investment

No answers on this topic
  • Negative cash flow, positive addition to our defense in depth strategy at one of the largest healthcare organizations in Georgia (at that time).
Brian Hoadley profile photo

Screenshots

TippingPoint

Pricing Details

AlienVault USM

General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details

AlienVault USM More Information

TippingPoint

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

TippingPoint More Information